Is Alexa spying on us? We're too busy to care — and we might regret that

 
Is Alexa spying on us? We're too busy to care — and we might regret that

BY TIM JOHNSON AUGUST 10, 2017 1:56 PM

WASHINGTON  It’s an experience every computer or smart phone user has had. After downloading new software or an app, a window pops up with a legal agreement. At the bottom is an “I agree” button. One click, and it’s gone.

Most users have no clue what they’ve agreed to.

That single action can empower software developers to extract reams of personal information – such as contacts, location, and other private data – from the devices. They can then market the information.

Even as privacy erodes in the digital era, little outcry arises over the digital tracking and profiling of consumers. Only slight murmurs are heard on Capitol Hill.


But a handful of security researchers, lawyers and privacy watchdogs voice increasing concern that consumers might one day wake up in anger at the collection of data by software companies winning rights to do so through “end user license agreements,” also known as EULAs. One researcher says the data collection potentially poses a national security threat.

For now, news about how companies collect data emerges in bite-sized stories. In late July, articles brought to light that certain models of the Roomba robotic vacuum not only collect dust as they whir across the floor, they also map the homes of users and send the data back to headquarters. The Massachusetts manufacturer, iRobot Corp., may share the data to enable the smart home and the devices within it to work better. It says it will do so only with customer consent.

iRobot chief executive Colin Angle said, “iRobot will never sell your data.” He added that such information “needs to be controlled by the customer and not as a data asset of a corporation to exploit.”

Other companies, empowered by the click-through habits of consumers that allow them to gather and sort through data, exploit the information by selling it to data brokers.

“We need legislation that basically forces these companies to be very, very clear on what information they are taking from us when we install these apps,” said Michael Patterson, chief executive of Plixer International, a Kennebunk, Maine, cybersecurity firm.

“If they change the EULAs, they have to tell us, and they also have to make what they’ve taken from us available at any time,” Patterson said.

“When you buy a box of cereal or crackers, on the side of it it gives you nutrition facts,” Patterson continued. “That’s what I want. I want nutrition facts on every piece of software I install so that I can … click on it and it says all the information they’re taking.”

Gary Reback, a Palo Alto, California, antitrust lawyer who has tangled in legal battles with Google and Microsoft over data privacy issues, said data harvested from consumers has led companies to create individual profiles, often at a level of detail that even family members may not know.

“When an online profile is created of you, which you never really get to see, it’s not just kind of what you buy, it’s who you might vote for,” Reback said in a recent telephone interview.

An old saying goes that when a consumer gets a service or product for free, the consumer becomes the product. His or her profile becomes an item to be marketed.

“You may think your identity is, you look in the mirror and that’s what you see, but it’s really not. Your identity is what they’ve compiled,” Reback said. “That is kind of scary when you think about it. I just don’t think people think about it enough.”

Internet-connected devices proliferate in homes. An estimated 8.4 billion such devices exist in the world today, the Gartner research firm says, and that number is projected to climb to 20.4 billion by 2020. Those devices are often lumped together as the “Internet of Things.”

“It’s getting worse because the Internet of Things is like where your location is, how much your heart rate is going, (and) what you’re saying with these new voice-controlled devices,” said Chris Wysopal, cofounder of Veracode, a Burlington, Massachusetts, app security company.

Wysopal is concerned enough about privacy that he avoids all voice-activated devices in his own home out of concern they may be feeding his private activities back to manufacturers. But he said young people may feel that “we enjoy all this technology so much that we’re willing to give it up.”

As time passes, added Reback, the growth of big players in technology may leave consumers with the sense they have little choice but to accept conditions imposed on them.

“You’ve got no alternative. Back when there was competition, if some people did a better job at protecting privacy, that might have influenced your choice,” Reback said.

The direction of where the issue may head is unclear.

“I don’t have a good answer for where it’s going to go. But I think that things might just change that people really start to think it’s fine to have all this data in the hands of third parties,” Wysopal said.

In addition to how the personal data of consumers is used, a corollary is whether companies can keep the data safe, said James Scott, senior fellow at the Institute for Critical Infrastructure Technology, a Washington center that calls itself America’s cybersecurity think tank.

If U.S. adversaries hack databases containing consumer profiles collected and built up by data firms working with software companies, they could use the information to manipulate public opinion to stoke chaos, Scott said.

“What happens then is that nation states are able to fan the flame of alt right, alt left, Bernie Sanders supporters, Trump supporters, Hillary supporters,” Scott said, adding that a potential campaign could “fan the flame of distrust of the population against the government.”

Scott, too, said he stops using some products when he learns that companies are marketing his usage data, and did so after a lawsuit filed in April charged that Bose, the audio manufacturer of wireless headphones, “was monitoring your music and selling that data.”

“I’m a privacy rights kind of guy, so I tossed my Bose and will never buy Bose again,” he said.

Bose, on its webpage, says it “respects the privacy of our users.”

Patterson, the Plixer chief, said he is particularly wary of smart phone navigation apps.

“Maybe they keep track if I’m speeding a lot,” he said. “Maybe they sell it to insurance companies.”

On a trip to one of the main U.S. intelligence agencies, which Scott would only identify as a three-letter agency, he said he was stuck at security with an unrelated large delegation, and inquired of a colleague who they were.

“‘Oh, that’s Google,’” he said he was told. “‘They are always here begging us to buy their data.’”


http://www.mcclatchydc.com/news/nation-world/national/national-security/article166488597.html

Comments

Post a Comment

Popular posts from this blog

Report: World’s 1st remote brain surgery via 5G network performed in China

World’s 1st remote brain surgery via 5G network performed in China Published time: 17 Mar, 2019 13:12 ·           A Chinese surgeon has performed the world’s first remote brain surgery using 5G technology, with the patient 3,000km away from the operating doctor. Dr. Ling Zhipei remotely implanted a neurostimulator into his patient’s brain on Saturday, Chinese state-run media  reports . The surgeon manipulated the instruments in the Beijing-based PLAGH hospital from a clinic subsidiary on the southern Hainan island, located 3,000km away. The surgery is said to have lasted three hours and ended successfully. The patient, suffering from Parkinson’s disease, is said to be feeling well after the pioneering operation. The doctor used a computer connected to the next-generation 5G network developed by Chinese tech giant Huawei. The new device enabled a near real-time connection, according to Dr. Ling.  “You barely feel that the patient is 3,000 kilometers away,”  he said.
Read more

BMW traps alleged thief by remotely locking him in car

BMW traps alleged thief by remotely locking him in car Stealer's Wheel? Seattle police department quotes "Watchmen" movie in a recap of the recent arrest. Tech Culture by Gael Fashingbauer Cooper December 4, 2016 5:00 PM PST It's maybe the most satisfying arrest we can imagine. Seattle police caught an alleged car thief by enlisting the help of car maker BMW to both track and then remotely lock the luckless criminal in the very car he was trying to steal. Jonah Spangenthal-Lee, deputy director of communications for the Seattle Police Department, posted a witty summary of the event on the SPD's blog on Wednesday. Turns out if you're inside a stolen car, it's perhaps not the best time to take a nap. "A car thief awoke from a sound slumber Sunday morning (Nov. 27) to find he had been remotely locked inside a stolen BMW, just as Seattle police officers were bearing down on him," Spangenthal-Lee wrote. The suspect found a ke
Read more

Visualizing The Power Of The World's Supercomputers

Visualizing The Power Of The World's Supercomputers   BY TYLER DURDEN FRIDAY, JAN 21, 2022 - 04:15 AM   A supercomputer is a machine that is built to handle billions, if not trillions of calculations at once. Each supercomputer is actually made up of many individual computers (known as nodes) that work together in parallel. A common metric for measuring the performance of these machines is  flops , or  floating point operations per second . In this visualization,  Visual Capitalist's Marcus Lu uses  November 2021 data from  TOP500  to visualize the computing power of the world’s top five supercomputers. For added context, a number of modern consumer devices were included in the comparison. Ranking by Teraflops Because supercomputers can achieve over one quadrillion flops, and consumer devices are much less powerful, we’ve used  teraflops  as our comparison metric. 1 teraflop = 1,000,000,000,000 (1 trillion) flops. Supercomputer Fugaku  was completed in March 202
Read more